Cyber-attacks are now so common that many people are lulled about the danger of their personal data being stolen by criminals.

A recent report by Trend Micro, a global security software company, analysed a decade’s worth of data breaches.

Here are five of the most interesting findings from the report what one needs to know to prevent criminals getting their hands on his/her personal data, reports Fortune:

Healthcare industry is targeted

‘The healthcare industry leads the way as a hacking target, followed by government and retailers. Healthcare records include a trove of personal data that criminals can use to commit fraud. With Social Security numbers, addresses, and birth dates, criminals can easily access financial records, apply for loans, and collect tax refunds. Over the summer, for example, criminals hacked the Internal Revenue Service and filed for bogus tax refunds using the data they stole.’

Credit card data breaches have skyrocketed

‘Since 2010, criminals have increasingly stolen credit and debit card information by rigging ATM machines and gas pumps with small electronic devices known as skimmers, and by tampering with point-of-sale terminals in retail stores. For example, Hackers infiltrated Target in late 2013 by installing malware on the retail giant’s digital cash registers.’

Malware is mostly used tool by hackers

‘If you get a suspicious looking email in your inbox claiming to come from your bank, don’t click on any links in it. You could get malware on your computer. Once it is installed on a machine, a hacker can then easily break into files and steal data. This so-called phishing scheme is an example of how hackers try to access their victims’ computers without having physical access. Malicious software like worms is still the top way hackers steal data over the Internet.’

Stolen online account info now all over the web

‘Criminals often sell stolen data like healthcare records or tax information to third parties on the so-called deep web, those parts of the Internet that can’t be found in popular search engines. Trend Micro discovered, however, that people’s PayPal, eBay, Facebook, FedEx, Netflix, and Amazon accounts are also being traded there. A stolen online account may not seem as big of a deal as a stolen health file, but it’s enough for a criminal to do some damage. For example, a criminal can use a stolen Facebook account to access other sites that require Facebook logins. From there, a criminal can steal sensitive data that may be found on another website. In the case of the ride-sharing app Uber, criminals can order a cab using a stolen account and bill the real account holder for the ride.’

Losing your computer or phone puts you at risk

Although criminals love tricking people to install malicious software on their computers, they are much more likely to steal sensitive information if they can get their hands on an actual device. Stolen or lost computers, mobile phones, USB drives, and other hardware leads the list for how criminals steal data. Hacking attacks like phishing schemes are second on the list.